$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa File: 3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: lRFbceN+2lKtKGqvBCRHDrJbwLB1yjMxndac6OubVf4= Subject key identifier: CA:48:8D:84:E7:C5:8D:1F:4A:73:0F:84:15:BD:FF:71:8D:A2:A0:90 Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610 Certificate serial: 3C658CBABD082C7D04B64675464FC3F2D41F9B53 Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa Signing time: Thu 26 Mar 2026 03:00:00 +0000 ROA not before: Thu 26 Mar 2026 02:55:00 +0000 ROA not after: Thu 25 Mar 2027 03:00:00 +0000 asID: 140443 IP address blocks: 202.70.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:65:8c:ba:bd:08:2c:7d:04:b6:46:75:46:4f:c3:f2:d4:1f:9b:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610 Validity Not Before: Mar 26 02:55:00 2026 GMT Not After : Mar 25 03:00:00 2027 GMT Subject: CN=CA488D84E7C58D1F4A730F8415BDFF718DA2A090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e3:ad:45:80:21:5c:2e:08:d9:7a:ee:17:2e: 07:79:4d:75:26:10:50:4e:bd:ad:53:49:f5:62:f3: 25:98:0c:dc:01:3c:8b:d2:17:ae:bd:61:3f:a8:da: 60:c0:5c:cf:6c:da:9b:73:8a:85:8c:a5:e4:26:4f: c3:7d:ae:16:ab:08:7c:c9:da:68:75:7f:98:b1:62: 8e:94:23:7f:24:2d:d6:d5:8d:d7:a3:82:3b:7c:14: 43:57:8f:1c:01:d4:dd:e2:a7:b9:32:57:53:b6:19: 71:6f:80:de:54:30:cb:dd:e2:38:4e:93:ba:96:64: 66:63:1c:a9:53:5b:46:e4:2f:a4:f8:28:b5:6d:7e: c4:19:c6:72:d7:48:b9:e6:69:53:dd:d1:81:76:5d: 11:30:01:2d:46:eb:0c:33:3a:c9:1f:0c:18:9e:aa: e8:4a:64:66:12:c5:2c:25:4e:af:10:1e:a8:94:45: a0:fb:3b:6f:d4:75:5b:fe:02:63:d3:f2:92:76:b5: 3d:c0:40:fa:33:bc:29:ab:76:79:62:ab:8e:20:25: 42:cf:ab:b8:f1:78:b8:ea:f9:37:3e:b6:1c:40:7f: 14:bc:60:34:7d:dd:63:a2:03:58:d0:0f:de:ff:e6: 30:e8:99:71:13:4d:ad:79:ff:4a:a6:17:c3:59:1d: 08:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:48:8D:84:E7:C5:8D:1F:4A:73:0F:84:15:BD:FF:71:8D:A2:A0:90 X509v3 Authority Key Identifier: keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3230322e37302e3133332e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.70.133.0/24 Signature Algorithm: sha256WithRSAEncryption 89:5f:5f:d1:df:9f:5f:90:b1:ab:a4:e9:70:ae:8c:a8:50:82: ef:51:d2:c5:18:84:40:5f:69:44:8c:91:d3:18:d0:7d:ba:e0: 1b:d2:4c:f4:3d:15:e2:04:8f:fc:42:26:5d:4f:9a:65:8f:de: e1:b5:62:7a:e2:b3:8b:53:24:d2:02:97:7c:e9:27:82:56:ce: 57:83:89:b5:59:21:d6:20:29:d6:55:a8:cc:b9:8b:0b:2d:08: 13:d1:46:c1:ec:18:1c:61:fb:34:4b:1d:d5:3d:de:81:f2:2a: c3:83:6e:99:6b:5a:2a:40:39:0c:35:cb:15:1d:77:48:69:bd: 13:e7:3c:16:a5:32:26:73:15:64:01:3f:8c:4d:f1:33:6f:ac: f9:22:f8:3e:0a:27:67:b7:1d:2d:52:97:27:85:cf:4f:7a:b0: 3e:42:43:71:13:a6:14:49:ad:c0:78:8c:35:94:27:f9:30:dd: 91:67:53:66:c2:89:4b:f1:c9:91:a8:09:4c:59:84:e2:d0:46: ba:b9:ff:56:1f:20:ab:f5:26:c4:e4:9a:3b:81:e1:66:5c:72: 57:77:cc:79:33:6a:4f:cd:1b:ea:66:05:8b:53:60:ba:cf:34: 66:c3:e5:28:cc:00:0b:f6:1a:cb:bb:42:3b:2a:28:5e:1a:ef: 24:e1:3d:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPGWMur0ILH0EtkZ1Rk/D8tQfm1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYx MkIxNTYxMDAeFw0yNjAzMjYwMjU1MDBaFw0yNzAzMjUwMzAwMDBaMDMxMTAvBgNV BAMTKENBNDg4RDg0RTdDNThEMUY0QTczMEY4NDE1QkRGRjcxOERBMkEwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf461FgCFcLgjZeu4XLgd5TXUm EFBOva1TSfVi8yWYDNwBPIvSF669YT+o2mDAXM9s2ptzioWMpeQmT8N9rharCHzJ 2mh1f5ixYo6UI38kLdbVjdejgjt8FENXjxwB1N3ip7kyV1O2GXFvgN5UMMvd4jhO k7qWZGZjHKlTW0bkL6T4KLVtfsQZxnLXSLnmaVPd0YF2XREwAS1G6wwzOskfDBie quhKZGYSxSwlTq8QHqiURaD7O2/UdVv+AmPT8pJ2tT3AQPozvCmrdnliq44gJULP q7jxeLjq+Tc+thxAfxS8YDR93WOiA1jQD97/5jDomXETTa15/0qmF8NZHQhtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUykiNhOfFjR9Kcw+EFb3/cY2ioJAwHwYDVR0j BBgwFoAUsJKKRdAU2NX61QMU6CgIbxKxVhAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2QzMjNiZS04MzdkLTQyNDQtODQ2Yy03ZDIzOTNhOWEwMDkvMC9CMDkyOEE0NUQw MTREOEQ1RkFENTAzMTRFODI4MDg2RjEyQjE1NjEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjA5MjhBNDVEMDE0RDhENUZBRDUwMzE0RTgyODA4NkYxMkIx NTYxMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZDMyM2JlLTgzN2QtNDI0NC04 NDZjLTdkMjM5M2E5YTAwOS8wLzMyMzAzMjJlMzczMDJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAykaFMA0GCSqG SIb3DQEBCwUAA4IBAQCJX1/R359fkLGrpOlwroyoUILvUdLFGIRAX2lEjJHTGNB9 uuAb0kz0PRXiBI/8QiZdT5plj97htWJ64rOLUyTSApd86SeCVs5Xg4m1WSHWICnW VajMuYsLLQgT0UbB7BgcYfs0Sx3VPd6B8irDg26Za1oqQDkMNcsVHXdIab0T5zwW pTImcxVkAT+MTfEzb6z5Ivg+Cidntx0tUpcnhc9PerA+QkNxE6YUSa3AeIw1lCf5 MN2RZ1NmwolL8cmRqAlMWYTi0Ea6uf9WHyCr9SbE5Jo7geFmXHJXd8x5M2pPzRvq ZgWLU2C6zzRmw+UozAAL9hrLu0I7KiheGu8k4T3V -----END CERTIFICATE-----Generated at Thu Mar 26 21:19:09 2026 by rpki-client